Extension of a Methodology for Risk-Aware Business Process Modeling and Simulation Enabling Process-Oriented Incident Handling Support

Authors:
Simon Tjoa;Stefan Jakoubi;Gernot Goluch;Gerald Quirchmayr
Affiliations:
-;-;-;-
Venue:
AINA '08 Proceedings of the 22nd International Conference on Advanced Information Networking and Applications
Year:
2008

Citing 0
Cited 1

Incorporating risk into business process models

IBM Journal of Research and Development

Quantified Score

Hi-index	0.01

Visualization

Abstract

Increasingly, companies face the challenges to perform their business processes effectively as well as efficiently and to simultaneously assure the continuity of these processes. As the majority of companies rely on IT, it is essential to establish effective incident handling. In this paper, we introduce new extensions of the risk-aware business process management framework ROPE (Risk-Oriented Process Evaluation) in order to support the improvement of the management and execution of business processes. We further discuss the advantages of those extensions and how they can support the implementation of standards and best-practices such as the NIST SP800-61 (Computer Security Incident Handling Guide).